Updates per reviews + new screenshots

Author: Michael Bender

articles/virtual-network-manager/concept-ip-address-management.md

@@ -5,29 +5,31 @@ author: mbender-ms
 ms.author: mbender
 ms.service: azure-virtual-network-manager
 ms.topic: how-to
-ms.date: 08/24/2024
+ms.date: 09/26/2024
 #customer intent: As a network administrator, I want to learn about IP address management (IPAM) in Azure Virtual Network Manager so that I can manage IP addresses in my virtual networks.
 ---
 
 # What is IP address management (IPAM) in Azure Virtual Network Manager?
 
-In this article, you learn about the IP address management (IPAM) feature in Azure Virtual Network Manager and how it can help you manage IP addresses in your virtual networks. With Azure Virtual Network Manager's IP Address Management (IPAM), you can create pools for IP address planning, automatically assign nonoverlapping classless inter-domain routing (CIDR) addresses to Azure resources, and prevent address space conflicts across on-premises and multicloud environments.
+In this article, you learn about the IP address management (IPAM) feature in Azure Virtual Network Manager and how it can help you manage IP addresses in your virtual networks. With Azure Virtual Network Manager's IP Address Management (IPAM), you can create pools for IP address planning, automatically assign non-overlapping classless inter-domain routing (CIDR) addresses to Azure resources, and prevent address space conflicts across on-premises and multicloud environments.
 
 [!INCLUDE [virtual-network-manager-ipam](../../includes/virtual-network-manager-ipam.md)]
 
 ## What is IP address management (IPAM)?
 
-In Azure Virtual Network Manager, IP address management (IPAM) helps you centrally manage IP addresses in your virtual networks by using IP address pools. The following are some key features of IPAM in Azure Virtual Network Manager:
+In Azure Virtual Network Manager, IP address management (IPAM) helps you centrally manage IP addresses in your virtual networks using IP address pools. The following are some key features of IPAM in Azure Virtual Network Manager:
 
-- Create pools for IP address planning 
+- Create pools for IP address planning.
 
-- Automatically assign nonoverlapped CIDRs to Azure resources 
+- Automatically assign non-overlapped CIDRs to Azure resources.
 
-- Reserve IPs for specific demands 
+- Reserve IPs for specific needs.
 
-- Prevent Azure address space from overlapping on-premises and  multicloud environments. 
+- Prevent Azure address space from overlapping on-premises and cloud environments. 
 
-- Monitor IP/CIDR usages and allocations in a pool 
+- Monitor IP/CIDR usages and allocations in a pool.
+
+- Support for IPv4 and IPv6 address pools.
 
 ## How does IPAM work in Azure Virtual Network Manager?
 
@@ -39,11 +41,15 @@ The IPAM feature in Azure Virtual Network Manager works through the following ke
 
 ### Managing IP Address Pools
 
-IPAM allows network administrators to plan and organize IP address usage by defining pools with address spaces and respective sizes. These pools act as containers for groups of CIDRs, enabling logical grouping for specific networking purposes. You can create a structured hierarchy of pools, dividing a larger pool into smaller, more manageable pools, aiding in more granular control and organization of your network's IP address space. The IPAM service currently handles IPv4 addresses, with IPv6 management to be introduced in the future.
+IPAM allows network administrators to plan and organize IP address usage by creating pools with address spaces and respective sizes. These pools act as containers for groups of CIDRs, enabling logical grouping for specific networking purposes. You can create a structured hierarchy of pools, dividing a larger pool into smaller, more manageable pools, aiding in more granular control and organization of your network's IP address space. 
+
+There are two types of pools in IPAM:
+- Root pool: The first pool created in your instance is the root pool. This represents your entire IP address range.
+- Child pool: A child pool is a subset of the root pool or another child pool. You can create multiple child pools within a root pool or another child pool. You can have up to 7 layers of pools
 
 ### Allocating IP addresses to Azure resources
 
-When it comes to allocation, you can assign Azure resources with CIDRs, such as virtual networks, to a specific pool. This helps in identifying which CIDRs are currently in use1. There's also the option to allocate static CIDRs to a pool, useful for occupying CIDRs that are either not currently in use within Azure or are part of Azure resources not yet supported by the IPAM service1. Allocated CIDRs are released back to the pool if the associated resource is removed or deleted, ensuring efficient utilization and management of the IP space1.
+When it comes to allocation, you can assign Azure resources with CIDRs, such as virtual networks, to a specific pool. This helps in identifying which CIDRs are currently in use. There's also the option to allocate static CIDRs to a pool, useful for occupying CIDRs that are either not currently in use within Azure or are part of Azure resources not yet supported by the IPAM service. Allocated CIDRs are released back to the pool if the associated resource is removed or deleted, ensuring efficient utilization and management of the IP space.
 
 ### Delegating permissions for IP address management
 
@@ -59,7 +65,7 @@ Additionally, it shows details for pools and resources associated with pools, gi
 
 ### Simplifying resource creation
 
-When creating CIDR-supporting resources like virtual networks, CIDRs are automatically allocated from the selected pool, simplifying the resource creation process1. The system ensures that the automatically allocated CIDRs don't overlap within the pool, maintaining network integrity and preventing conflicts1.
+When creating CIDR-supporting resources like virtual networks, CIDRs are automatically allocated from the selected pool, simplifying the resource creation process. The system ensures that the automatically allocated CIDRs don't overlap within the pool, maintaining network integrity and preventing conflicts.
 
 ## Permission requirements for IPAM in Azure Virtual Network Manager
 
@@ -68,4 +74,4 @@ You need to have the Network Contributor role for the scope of the network manag
 ## Next steps
 
 > [!div class="nextstepaction"]
-> [Learn how to managed IP addresses in Azure Virtual Network Manager](./how-to-manage-ip-addresses-network-manager.md)
+> [Learn how to manage IP addresses in Azure Virtual Network Manager](./how-to-manage-ip-addresses-network-manager.md)

articles/virtual-network-manager/how-to-manage-ip-addresses-network-manager.md

@@ -5,7 +5,7 @@ author: mbender-ms
 ms.author: mbender
 ms.service: azure-virtual-network-manager
 ms.topic: how-to
-ms.date: 07/17/2024
+ms.date: 09/27/2024
 #customer intent: As a network administrator, I want to learn how to manage IP addresses with Azure Virtual Network Manager so that I can create and assign IP address pools to my virtual networks.
 ---
 
@@ -19,6 +19,7 @@ Azure Virtual Network Manager allows you to manage IP addresses by creating and
 
 - An Azure subscription. If you don't have an Azure subscription, create a [free account](https://azure.microsoft.com/free/) before you begin.
 - An existing network manager instance. If you don't have a network manager instance, see [Create a network manager instance](create-virtual-network-manager-portal.md).
+- A virtual network that you want to associate with an IP address pool.
 - To manage IP addresses in your network manager, you have the **Network Contributor** role with [role-based access control](../role-based-access-control/quickstart-assign-role-user-portal.md) Classic Admin/legacy authorization isn't supported.
 
 ## Create an IP address pool
@@ -27,36 +28,66 @@ In this step, you create an IP address pool for your virtual network.
 
 1. In the Azure portal, search for and select **Network managers**.
 2. Select your network manager instance.
-3. In the left menu, select **IP address pools** under **IP address management**.
+3. In the left menu, select **IP address pools (Preview)** under **IP address management (Preview)**.
 4. Select **+ Create** or **Create** to create a new IP address pool.
 5. In the **Create an IP address pool** window, enter the following information:
+   
     | Field | Description |
     | --- | --- |
     | **Name** | Enter a name for the IP address pool. |
     | **Description** | Enter a description for the IP address pool. |
     | **Parent pool** | For creating a **root pool**, leave default of **None**. For creating a **child pool**, select the parent pool. |
 
+    :::image type="content" source="media/how-to-manage-ip-addresses/create-root-pool.png" alt-text="Screenshot of Create an ip address pool settings for a root pool" :::   
+    
 6. Select **Next** or the **IP addresses** tab.
 7. Under **Starting address**, enter the IP address range for the pool.
+
+    :::image type="content" source="media/how-to-manage-ip-addresses/set-pool-ip-range-thumb.png" alt-text="Screenshot of IP address range settings for a root pool" lightbox="media/how-to-manage-ip-addresses/set-pool-ip-range.png"::: 
+
 8. Select **Review + create** and then **Create** to create the IP address pool.
+9. Repeat these steps for another root or child pool.
 
 ## Associate a virtual network with an IP address pool
 
-In this step, you associate a virtual network with an IP address pool from the **Allocations** settings page in the IP address pool. From this page, you can allocate address spaces to a child pool, an existing resource with CIDRs, and a static CIDR block. 
+In this step, you associate an existing virtual network with an IP address pool from the **Allocations** settings page in the IP address pool.  
 
-1. Browse to your IP address pool.
-2. Select **Allocate** or **Allocations** under **Settings**.
+1. Browse to your network manager instance and select your IP address pool.
+2. From the left menu, select **Allocations** under **Settings** or select **Allocate**. 
 3. In the **Allocations** window, select **+ Create**>**Associate resources**. The **Associate resources** option allocates a CIDR to an existing virtual network.
+   
+    :::image type="content" source="media/how-to-manage-ip-addresses/pool-allocation-settings-associate-resource-thumb.png" alt-text="Screenshot of allocations page for associating resources." lightbox="media/how-to-manage-ip-addresses/pool-allocation-settings-associate-resource.png":::
+
 4. In the **Select resources** window, select the virtual networks you want to associate with the IP address pool and then choose **Select**.
+   
+   :::image type="content" source="media/how-to-manage-ip-addresses/associate-virtual-network-resources-thumb.png" alt-text="Screenshot of associate resources page with virtual networks selected." lightbox="media/how-to-manage-ip-addresses/associate-virtual-network-resources.png":::
+
+5. Verify the virtual network are listed.
+   
+   :::image type="content" source="media/how-to-manage-ip-addresses/ip-address-pool-allocation-statistics.png" alt-text="Screenshot of IP address pool allocations and statistics.":::
+
+> [!Note]
+> In addition to associating resources, you can allocate address spaces to a child pool or a static CIDR block from the a pool's Allocations page.
 
 ## Create static CIDR blocks for a pool
 
-In this step, you create a static CIDR block for a pool. This is helpful for allocating a space that is outside of Azure or Azure resources that aren't supported by IPAM. For example, you can allocate a CIDR in the pool to the address space that you in your on-premises environment. Likewise, you can also use this for a space that is used by your VWAN hub or Azure VMware Private Cloud.
+In this step, you create a static CIDR block for a pool. This is helpful for allocating a space that is outside of Azure or Azure resources that aren't supported by IPAM. For example, you can allocate a CIDR in the pool to the address space in your on-premises environment. Likewise, you can also use this for a space that is used by a Virtual WAN hub or Azure VMware Private Cloud.
 
 1. Browse to your IP address pool.
 2. Select **Allocate** or **Allocations** under **Settings**.
-3. In the **Allocations** window, select **+ Create**>**Allocate static CIDRs**. The **Allocate static CIDRs** option allocates a CIDR to an address space that isn't currently in use within Azure or is part of Azure resources not yet supported by the IPAM service. For example, this can be a CIDR that is used by your on-premises environment or a VWAN hub.
-
+3. In the **Allocations** window, select **+ Create**>**Allocate static CIDRs**.
+4. In the **Allocate static CIDRs from pool** window, enter the following information:
+   
+    | Field | Description |
+    | --- | --- |
+    | **Name** | Enter a name for the static CIDR block.|
+    | **Description** | Enter a description for the static CIDR block. |
+    | **CIDR** | Enter the CIDR block. |
+
+    :::image type="content" source="media/how-to-manage-ip-addresses/create-static-cidr-reservation.png" alt-text="Screenshot of Allocate static CIDR from pool window with address range for CIDR reservation.":::
+    
+5. Select **Allocate**.
+6. 
 ## Review allocation usage
 
 In this step, you review the allocation usage of the IP address pool. This helps you understand how the CIDRs are being used in the pool, along with the percentage of the pool that is allocated and the compliance status of the pool.
@@ -67,41 +98,44 @@ In this step, you review the allocation usage of the IP address pool. This helps
 
     | Field | Description |
     | --- | --- |
-    | **Address Space** | The address space that is allocated to the pool. |
-    | **Address count** | The number of addresses that are allocated to the pool. |
-    | **IP usage** | The number of IP addresses that are actively being consumed by resources. |
+    | **Pool address space** | The total address space that is allocated to the pool. |
+    | **Allocated address Space** | The address space that is allocated to the pool. |
+    | **Available address Space** | The address space that is available for allocation. |
+    | **Available address count** | The number of addresses that are allocated to the pool. |
     | **IP allocation** | The set of IP addresses that are allocated from the pool for potential use. |
 
-4. For each allocation, you can see the following:
+    :::image type="content" source="media/how-to-manage-ip-addresses/review-ip-address-pool-allocations.png" alt-text="Screenshot of an ip address pool allocations and statistics for the pool.":::
+
+4. For each allocation, you can review the following:
 
     | Field | Description |
     | --- | --- |
     | **Name** | The name of the allocation. |
     | **Address space** | The address space that is allocated to the pool. |
     | **Address count** | The number of addresses that are allocated to the pool. |
     | **IP allocation** | The set of IP addresses that are allocated from the pool for potential use. |
-    | **IP usage** | The number of IP addresses that are actively being consumed by resources. |
-    | **Compliancy** | The status of the allocation to the pool. |
-
+    | **Status** | The status of the allocation to the pool. |
+    
+    :::image type="content" source="media/how-to-manage-ip-addresses/review-ip-address-pool-allocations-by-resource.png" alt-text="Screenshot of ip address pool allocations highlighting individual resource information.":::
 ## Delegating permissions for IP address management
 
 In this step, you delegate permissions to other users to manage IP address pools in your network manager. This allows you to control access to the IP address pools and ensure that only authorized users can manage the pools.
 
 1. Browse to your IP address pool.
 2. In the left menu, select **Access control (IAM)**.
 
-You can also give permission to use an IPAM pool to other users. This is useful when you want to let your users create a virtual network and make sure the virtual network that they create won't have overlap CIDRs.
-To do so, in IAM, add a role assignment of “IPAM Pool Contributor” and assign access. 
+You can also give other users permission to use an IPAM pool. This is useful when you want to let your users create a virtual network and make sure the virtual network that they create won't have overlap CIDRs.
+To do so, in IAM, add a role assignment of “IPAM Pool User" and assign access. 
 
 :::image type="content" source="media/how-to-manage-ip-addresses/ip-address-pool-allocation-statistics-thumb.png" alt-text="Screenshot of ip address allocations page with resource allocations and statistics of ip address pool." lightbox="media/how-to-manage-ip-addresses/ip-address-pool-allocation-statistics.png":::
 
-## Create a Vnet with a non-overlapping CIDR range
+## Create a virtual network with a nonoverlapping CIDR range
 
-In this step, you create a VNet with a non-overlapping CIDR range by allowing IPAM to automatically provide a non-overlapping CIDR.
+In this step, you create a virtual network with a nonoverlapping CIDR range by allowing IPAM to automatically provide a nonoverlapping CIDR.
 
-1. In the Azure portal, search for and select **Virtual Network**.
+1. In the Azure portal, search for and select **Virtual networks**.
 2. Select **+ Create**.
 3. 
 
 
-Instead of specifying a specific CIDR, you can choose to let IPAM to automatically provide a non-overlapping CIDR. You can do so by choosing an IPAM pool and the size for the VNet as shown below.
+Instead of specifying a specific CIDR, you can choose to let IPAM to automatically provide a nonoverlapping CIDR. You can do so by choosing an IPAM pool and the size for the virtual network as shown below.